Hardware: VPS bought online YunoHost version: 11.2.10.1 (stable). I have access to my server : Through SSH and through the webadmin Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no If your request is related to an app, specify its name and version: WireGuard 0.6.2~ynh1
Description of my issue
Hello, I have installed Wireguard on my VPS. When I run diagnosis I see two issues related to this application:
Port 8095 is not reachable from outside. However when I check using ‘sudo yunohost firewall list’ it lists this port as one of the open ports.
Service wg-quick@wg0 is failed * You can try to restart the service, and if it doesn’t work, have a look at the service logs in the webadmin (from the command line, you can do this with yunohost service restart wg-quick@wg0 and yunohost service log wg-quick@wg0).
These are the logs in my attempt to start wg-quick@wg0 hastebin
This is what I get when I attempt to run sudo apt install wireguard:
sudo apt install wireguard
[sudo] password for admin:
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
wireguard is already the newest version (1.0.20210223-1).
wireguard set to manually installed.
0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
I checked for System Updates, and there was an update for yunohost. I installed it. And there were no new updates for WireGuard. I still could not start wg-quick@wg0.
I am now on YunoHost11.2.10.3 (stable). Should I upgrade to a newer version of the Linux kernel outside of YunoHost, manually?
If it it known to require modifying / upgrading stuff - specially the Linux kernel - outside of YunoHost (and Debian.), I am happy to resign to the fact that I cannot run WireGuard
I am not savvy enough to tinker with the operating system.
I will try to do a test installation of YunoHost somewhere else, make the modifications you recommend and get back to this thread.
But, by any chance, does this mean that YunoHost currently cannot run WireGuard? That you’ll need to modify the Linux Kernel to be able to run it? If that is the case, is it not better to remove it from the application catalogue, or provide specific instructions / warnings about it?
It is not YunoHost’s fault if your server runs an old-ish kernel version. I’ll add a pre-install warning about this though… actually there might be a way to install the right packages. I’ll come back with something to test.
The reason I asked that question was because, if I install Debian 11, update it to make sure it is current, and then install YunoHost on top of it and keep the server up to date, I would naturally assume that I am running what everyone else is using. And if I have an older kernel everyone else is likely to have the same issue. That was the logic I was following
sudo yunohost app upgrade wireguard_client -u https://github.com/YunoHost-Apps/wireguard_client_ynh/tree/old-kernels -F
[sudo] password for admin:
Error: Could not find wireguard_client in the list of installed apps:
* cryptpad
* wireguard
To be able to use WireGuard, should I install both applications WireGuard and WireGuard client? If that is so, I can try installing it from the web interface.
I couldn’t make up my mind to go ahead with it because I started debating with myself about reinstalling the server. The information that it runs an older kernel was a bit of a shock. It shouldn’t have been the case. Something may have gone wrong at some point.
I am most likely to redo the server at some point soon. And then install WireGuard on top of it.